$ rpki-client -vvf rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft File: hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft (raw, json) Hash identifier: gunrrRsJDAd971nTRlcD6cuoDGf9aKq02QUrKf2sK0c= Subject key identifier: 94:C6:6A:42:DC:67:C7:7E:0B:2E:90:D3:5A:7A:52:81:37:1F:A9:C7 Authority key identifier: 85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB Certificate issuer: /CN=A91958BE/serialNumber=854FE7275360D07810AFFBA6C28FFF23582A20EB Certificate serial: 01B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft Manifest number: 01AF Signing time: Sun 29 Jun 2025 02:19:12 +0000 Manifest this update: Sun 29 Jun 2025 02:19:11 +0000 Manifest next update: Sun 06 Jul 2025 02:19:11 +0000 Files and hashes: 1: hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl (hash: QN3CB1zwe0JkleER549yLyIhnMvbxwZeyNuhZT+8wfc=) 2: 54FB2C8CD61711EEB983D919C4F9AE02.roa (hash: QVA6cnHl8Ur5a0kDBgQcj4pP7Ka7QThHbgUyDhuNztQ=) 3: 5576D030D61711EEB983D919C4F9AE02.roa (hash: El263VSWEusvqzTfH9aiwLLR8nJJvv9GT054yDKZA+0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 02:19:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 435 (0x1b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91958BE, serialNumber=854FE7275360D07810AFFBA6C28FFF23582A20EB Validity Not Before: Jun 29 02:19:11 2025 GMT Not After : Jul 6 02:19:11 2025 GMT Subject: CN=6860a29f-8240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:30:5f:3f:85:40:76:25:b4:27:b2:7c:03:5d: 4d:2c:24:87:35:6c:14:4c:7d:5d:ba:84:0d:0e:1b: 68:2a:7c:09:88:f6:78:67:68:0d:fa:12:39:f7:0d: bf:18:3f:47:22:b8:87:ad:42:28:a1:b8:0e:b9:f2: be:8b:df:dc:bd:49:79:de:11:36:a9:f4:0b:ec:c6: 1b:bc:c0:72:35:1b:29:16:39:a7:7f:43:b1:f4:73: fb:16:0c:02:23:d5:8c:7b:ea:eb:f9:d1:6d:72:62: e1:67:2a:33:30:25:67:03:75:8a:71:c5:ed:b5:81: 57:d1:a7:d1:ca:e8:6a:fb:10:a3:59:59:8c:4a:29: b6:13:cd:00:99:67:23:e2:67:76:88:50:ae:db:cb: e6:44:bc:59:84:26:c4:d9:15:55:9a:40:48:da:6f: 72:f0:a4:4a:bf:a8:85:5f:d7:17:8a:00:19:4f:db: 34:74:a5:54:0d:20:be:70:00:42:7f:e6:6e:ce:39: f2:fd:8a:23:35:e1:7c:aa:15:96:16:c2:43:95:ca: 9f:03:e0:39:7f:59:c0:c3:51:13:82:b5:38:e7:8a: 95:16:08:61:50:05:b7:8d:65:79:4a:b5:ac:34:34: 37:37:eb:18:08:f3:1e:01:e5:ca:58:6a:8e:96:19: 81:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:C6:6A:42:DC:67:C7:7E:0B:2E:90:D3:5A:7A:52:81:37:1F:A9:C7 X509v3 Authority Key Identifier: keyid:85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:c8:dd:8e:d3:3a:e6:ab:c1:62:b8:a4:d1:65:61:43:00:aa: e7:72:ea:c4:1f:03:40:2a:7d:0d:3c:df:3d:10:0a:c3:62:83: 6e:cd:d5:63:9e:0b:47:bb:17:da:5f:da:62:49:81:20:fa:b3: 73:88:aa:4d:92:5a:38:3f:02:3e:8c:35:cd:d8:76:c9:03:73: 74:55:86:37:39:01:dd:c5:47:86:86:ae:15:58:74:a7:20:a8: a7:fd:83:c1:f7:06:72:b9:91:cb:bc:97:8b:90:59:f2:93:8e: 5b:b8:51:2c:d4:ac:0a:07:bb:a8:08:4e:99:86:ae:32:ec:0a: 46:86:95:00:62:f4:92:02:6e:d8:db:07:1c:ae:76:3d:35:cc: 79:c2:6a:03:13:ce:59:7f:64:22:1f:d6:f5:4b:63:98:ea:3d: e9:da:12:cf:15:e2:07:8c:21:c4:58:9b:75:0c:e2:fc:a9:04: 13:03:3b:48:54:80:9e:fc:ad:15:65:2d:33:c0:75:9d:3d:91: 30:d1:64:e2:83:34:89:1e:e5:71:2e:8a:15:c9:43:23:51:95: e7:70:97:1b:b7:8d:d2:98:51:0e:3f:f7:de:65:ea:97:25:0a: 11:53:51:80:ce:1f:2c:bb:7e:85:f3:c8:9f:6c:d4:67:90:e6: eb:5a:f0:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU4QkUxMTAvBgNVBAUTKDg1NEZFNzI3NTM2MEQwNzgxMEFGRkJBNkMyOEZGRjIz NTgyQTIwRUIwHhcNMjUwNjI5MDIxOTExWhcNMjUwNzA2MDIxOTExWjAYMRYwFAYD VQQDEw02ODYwYTI5Zi04MjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTBfP4VAdiW0J7J8A11NLCSHNWwUTH1duoQNDhtoKnwJiPZ4Z2gN+hI59w2/ GD9HIriHrUIoobgOufK+i9/cvUl53hE2qfQL7MYbvMByNRspFjmnf0Ox9HP7FgwC I9WMe+rr+dFtcmLhZyozMCVnA3WKccXttYFX0afRyuhq+xCjWVmMSim2E80AmWcj 4md2iFCu28vmRLxZhCbE2RVVmkBI2m9y8KRKv6iFX9cXigAZT9s0dKVUDSC+cABC f+Zuzjny/YojNeF8qhWWFsJDlcqfA+A5f1nAw1ETgrU454qVFghhUAW3jWV5SrWs NDQ3N+sYCPMeAeXKWGqOlhmBHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJTGakLc Z8d+Cy6Q01p6UoE3H6nHMB8GA1UdIwQYMBaAFIVP5ydTYNB4EK/7psKP/yNYKiDr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NThCRS83QzdGQjJGRUMy MTkxMUVEODAyNTZGNEVDNEY5QUUwMi9oVV9uSjFOZzBIZ1FyX3Vtd29fX0kxZ3FJ T3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hVX25KMU5nMEhnUXJfdW13b19fSTFncUlPcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NThCRS83QzdGQjJGRUMyMTkxMUVEODAyNTZGNEVDNEY5QUUwMi9oVV9uSjFOZzBI Z1FyX3Vtd29fX0kxZ3FJT3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYyN2O0zrmq8FiuKTRZWFDAKrncurEHwNAKn0NPN89EArDYoNuzdVj ngtHuxfaX9piSYEg+rNziKpNklo4PwI+jDXN2HbJA3N0VYY3OQHdxUeGhq4VWHSn IKin/YPB9wZyuZHLvJeLkFnyk45buFEs1KwKB7uoCE6Zhq4y7ApGhpUAYvSSAm7Y 2wccrnY9Ncx5wmoDE85Zf2QiH9b1S2OY6j3p2hLPFeIHjCHEWJt1DOL8qQQTAztI VICe/K0VZS0zwHWdPZEw0WTigzSJHuVxLooVyUMjUZXncJcbt43SmFEOP/feZeqX JQoRU1GAzh8su36F88ifbNRnkObrWvDO -----END CERTIFICATE-----Generated at Sun Jun 29 17:31:50 2025 by rpki-client